Join GitHub today
GitHub is home to over 50 million developers working together to host and review code, manage projects, and build software together.Sign up
Opensnitch: init at 1.0.0b and provide NixOS module #76897
Motivation for this change
Opensnitch seems to be a useful personal firewall application to control (at the moment only outgoing) connections per process/user/destination.
The package provides two attributes, the daemon
Additionally, a NixOS module is provided which starts the daemon as a system service, and (default behavior) runs the UI process in each user's graphical session as a user service.
Some support is added for generating some predefined rules, as e.g. per-process rules, which have been created via the UI prompt, become obsolete if the store path to a program changes.
That would be great! There's already a stable version 1.0 https://github.com/gustavo-iniguez-goya/opensnitch/releases/tag/v1.0.0 Looks really well maintained!